Lucene search
CVE-2024-36996
Splunk enterprise and cloud platform versions prior to 9.2.2, 9.1.5, 9.0.10 and 9.1.2312.109 allow user existence determination and potential brute force attacks via SAML authentication
Show more
| Reporter | Title | Published | Views | Family All 5 |
|---|---|---|---|---|
 | Splunk Enterprise 9.0.0 < 9.0.10, 9.1.0 < 9.1.5, 9.2.0 < 9.2.2 (SVD-2024-0716) | 1 Jul 202400:00 | – | nessus |
 | Splunk Enterprise Information Disclosure Vulnerability (CNVD-2024-34261) | 5 Jul 202400:00 | – | cnvd |
 | CVE-2024-36996 Information Disclosure of user names | 1 Jul 202416:30 | – | vulnrichment |
 | CVE-2024-36996 Information Disclosure of user names | 1 Jul 202416:30 | – | cvelist |
 | CVE-2024-36996 | 1 Jul 202417:15 | – | nvd |
[
{
"product": "Splunk Enterprise",
"vendor": "Splunk",
"versions": [
{
"version": "9.2",
"status": "affected",
"versionType": "custom",
"lessThan": "9.2.2"
},
{
"version": "9.1",
"status": "affected",
"versionType": "custom",
"lessThan": "9.1.5"
},
{
"version": "9.0",
"status": "affected",
"versionType": "custom",
"lessThan": "9.0.10"
}
]
},
{
"product": "Splunk Cloud Platform",
"vendor": "Splunk",
"versions": [
{
"version": "9.1.2312",
"status": "affected",
"versionType": "custom",
"lessThan": "9.1.2312.109"
}
]
}
]| Source | Link |
|---|---|
| advisory | www.advisory.splunk.com/advisories/SVD-2024-0716 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo01 Jul 2024 17:15Current
5.3Medium risk
Vulners AI Score5.3
CVSS35.3
EPSS0.00046
SSVC